Downgrade IncorrectIntegerConversionQuery precision to high

`very-high` implies near 0 false positives and we have run into a number and an entire class Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>
2025-12-17 01:03:14 +01:00 · 2024-09-24 22:02:04 -04:00
parent 590e93d8ed
commit a9e07a88af
2 changed files with 5 additions and 1 deletions
--- a/go/ql/src/Security/CWE-681/IncorrectIntegerConversionQuery.ql
+++ b/go/ql/src/Security/CWE-681/IncorrectIntegerConversionQuery.ql
@@ -10,7 +10,7 @@
 * @tags security
 *       external/cwe/cwe-190
 *       external/cwe/cwe-681
- * @precision very-high
+ * @precision high
 */

 import go
--- a/go/ql/src/change-notes/2024-09-24-incorrect-integer-conversion-query-precision.md
+++ b/go/ql/src/change-notes/2024-09-24-incorrect-integer-conversion-query-precision.md
@@ -0,0 +1,4 @@
+---
+category: queryMetadata
+---
+* The precision of the `go/incorrect-integer-conversion-query` query was decreased from `very-high` to `high`, since there is at least one known class of false positives involving dynamic bounds checking.